Zoek.exe v5.0.0.0 Updated 05-September-2014
Tool run by Jonas on vr 05/09/2014 at 11:14:09,04.
Microsoft Windows 8.1 6.3.9600  x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Jonas\Desktop\zoek.exe [Scan all users] [Script inserted] [Checkboxes used]

==== System Restore Info ======================

5/09/2014 11:15:17 Zoek.exe System Restore Point Created Succesfully.

==== Empty Folders Check ======================

C:\PROGRA~2\AGEIA Technologies deleted successfully
C:\Program Files\office.tmp deleted successfully
C:\PROGRA~3\Oracle deleted successfully
C:\Users\danny_000\AppData\Local\VirtualStore deleted successfully
C:\Users\Jonas\AppData\Local\VirtualStore deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-2856834796-3624118678-1303184682-1002\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{7BA8224C-5340-7444-43CA-F403475E891D} deleted successfully
HKEY_USERS\S-1-5-21-2856834796-3624118678-1303184682-1002\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{7BA8224C-5340-7444-43CA-F403475E891D} deleted successfully
HKEY_USERS\S-1-5-21-2856834796-3624118678-1303184682-1002\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7BA8224C-5340-7444-43CA-F403475E891D} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7BA8224C-5340-7444-43CA-F403475E891D} deleted successfully

==== Deleting CLSID Registry Values ======================


==== Running Processes ======================

C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\PROGRAM FILES (x86)\Cyberlink\PowerDVD10\PDVD10Serv.exe
C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe
C:\Program Files\Lenovo\SettingsDependency\SettingsService.exe
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
C:\Program Files (x86)\Norton Internet Security\Engine\21.5.0.19\NIS.exe
C:\windows\SysWOW64\NLSSRV32.EXE
C:\Program Files (x86)\Lenovo\QuickControl\QuickControlMasterSvc.exe
C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe
C:\Program Files (x86)\Lenovo\QuickControl\QuickControlService.exe
C:\Program Files (x86)\Lenovo\QuickControl\QuickControl.exe
C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
C:\Program Files (x86)\TeamViewer\Version9\tv_w32.exe
C:\Program Files\Lenovo\Lenovo Mobile Hotspot\MobileHotspotclient.exe
C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
C:\Users\Jonas\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBConsole.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Lenovo\QuickControl\QuickControlInput.exe
C:\Program Files (x86)\Lenovo\QuickControl\QuickControlInput.exe
C:\Program Files (x86)\Norton Internet Security\Engine\21.5.0.19\NIS.exe
C:\Program Files\Lenovo\Communications Utility\tpknrres.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Lenovo\LocationAware\loctaskmgr.exe
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE
C:\Program Files (x86)\Lenovo\LocationAware\lpdagent.exe
C:\Users\Jonas\AppData\Local\Pokki\Engine\HostAppService.exe
C:\Users\Jonas\AppData\Local\Pokki\Engine\HostAppService.exe
C:\Program Files (x86)\Microsoft Office\Office15\WINWORD.EXE
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files (x86)\Lenovo\Password Manager\pwm_ie_helper_desktop.exe
C:\Program Files (x86)\Lenovo\Password Manager\pwm_ie_helper_metro.exe
C:\Program Files (x86)\Lenovo\Password Manager\password_manager.exe
C:\Program Files (x86)\Microsoft Office\Office15\ONENOTEM.EXE
C:\Program Files\Lenovo\Communications Utility\AVControlCenter32.exe
C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe
C:\Program Files\Lenovo\Communications Utility\cammute.exe
C:\Program Files\Lenovo\Communications Utility\vcamsvchlpr.exe
C:\Program Files\Lenovo\Communications Utility\tpknrsvc.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\MossNet\updateMossNet.exe
C:\Users\Jonas\Desktop\zoek.exe
C:\WINDOWS\SysWOW64\cmd.exe
C:\WINDOWS\SysWOW64\cmd.exe
C:\WINDOWS\SysWOW64\cmd.exe
C:\Program Files (x86)\MossNet\bin\utilMossNet.exe
C:\Program Files (x86)\MossNet\bin\MossNet.BrowserAdapter.exe
C:\Program Files (x86)\MossNet\bin\MossNet.BRT.Helper.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE

==== Deleting Services ======================

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BackupStack deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Eventlog\Application\Update MossNet deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Update MossNet deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Eventlog\Application\Util MossNet deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Util MossNet deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\webinstr deleted successfully

==== Registry Fix Code x64 ======================

Windows Registry Editor Version 5.00

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7BA8224C-5340-7444-43CA-F403475E891D}] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7BA8224C-5340-7444-43CA-F403475E891D}] 

==== Deleting Files \ Folders ======================

C:\Users\Jonas\AppData\Roaming\istartsurf deleted
C:\Program Files (x86)\ver4Re-markit deleted
C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69 deleted
C:\PROGRA~3\Package Cache deleted
C:\Users\danny_000\AppData\Local\Pokki deleted
C:\Users\Default\AppData\Local\Pokki deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Bootable Recovery Tool Wizard deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk deleted
C:\Users\Jonas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MyPC Backup deleted
C:\Users\Jonas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MyPC Backup.lnk deleted
C:\windows\SysNative\Tasks\LaunchSignup deleted
C:\windows\SysNative\drivers\{22199461-0421-4e0a-af67-cd5f9b3ce6ef}w64.sys deleted
C:\windows\SysNative\drivers\webinstr.sys deleted
"C:\Program Files (x86)\MyPC Backup\GetText.dll" deleted
"C:\Program Files (x86)\MyPC Backup\MPCBClient.dll" deleted
"C:\Program Files (x86)\MyPC Backup\MyPC Backup.exe" deleted
"C:\Program Files (x86)\MyPC Backup\ObjectListView.dll" deleted
"C:\Program Files (x86)\MyPC Backup\Shared Stack.dll" deleted
"C:\Program Files (x86)\MossNet\updateMossNet.exe" deleted
"C:\PROGRA~2\MyPC Backup\GetText.dll" deleted
"C:\PROGRA~2\MyPC Backup\MPCBClient.dll" deleted
"C:\PROGRA~2\MyPC Backup\MyPC Backup.exe" deleted
"C:\PROGRA~2\MyPC Backup\ObjectListView.dll" deleted
"C:\PROGRA~2\MyPC Backup\Shared Stack.dll" deleted
"C:\Users\Jonas\AppData\Local\Pokki\analytics.db" deleted
"C:\Users\Jonas\AppData\Local\Pokki\engine_update.db" deleted
"C:\Users\Jonas\AppData\Local\Pokki\notifications.db" deleted
"C:\PROGRA~2\MossNet\updateMossNet.exe" deleted
"C:\Program Files (x86)\MyPC Backup\Database\mpcb_settings.db" not deleted
"C:\Program Files (x86)\MyPC Backup\x64\System.Data.SQLite.dll" deleted
"C:\Program Files (x86)\MossNet\bin\MossNet.BrowserAdapter.exe" deleted
"C:\Program Files (x86)\MossNet\bin\MossNet.BRT.Helper.exe" deleted
"C:\Program Files (x86)\MossNet\bin\MossNet.PurBrowse64.exe" deleted
"C:\Program Files (x86)\MossNet\bin\utilMossNet.exe" deleted
"C:\Program Files (x86)\MossNet\bin\{22199461-0421-4e0a-af67-cd5f9b3ce6ef}.dll" deleted
"C:\Program Files (x86)\MossNet\bin\{22199461-0421-4e0a-af67-cd5f9b3ce6ef}64.dll" deleted
"C:\PROGRA~2\MyPC Backup\Database\mpcb_settings.db" not deleted
"C:\PROGRA~2\MyPC Backup\x64\System.Data.SQLite.dll" deleted
"C:\Users\Jonas\AppData\Local\Pokki\Engine\avcodec-54.dll" deleted
"C:\Users\Jonas\AppData\Local\Pokki\Engine\avformat-54.dll" deleted
"C:\Users\Jonas\AppData\Local\Pokki\Engine\avutil-51.dll" deleted
"C:\Users\Jonas\AppData\Local\Pokki\Engine\chrome_100_percent.pak" deleted
"C:\Users\Jonas\AppData\Local\Pokki\Engine\en-US.pak" deleted
"C:\Users\Jonas\AppData\Local\Pokki\Engine\HostAppService.exe" deleted
"C:\Users\Jonas\AppData\Local\Pokki\Engine\icudt.dll" deleted
"C:\Users\Jonas\AppData\Local\Pokki\Engine\libPokki.dll" deleted
"C:\Users\Jonas\AppData\Local\Pokki\Engine\ppGoogleNaClPluginChrome.dll" deleted
"C:\Users\Jonas\AppData\Local\Pokki\Engine\resources.pak" deleted
"C:\Users\Jonas\AppData\Local\Pokki\Engine\StartMenuIndexer.exe" deleted
"C:\Users\Jonas\AppData\Local\Pokki\Pokkies\installed_pokkies.db" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData\lockfile" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData\Default\Cookies" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData\Default\Network Action Predictor" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData\Default\Shortcuts" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1\Cookies" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1\Cookies-journal" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1\Network Action Predictor" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1\Visited Links" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1-websheet\Cookies" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1-websheet\Network Action Predictor" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData\notifications\Cookies" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData\notifications\Network Action Predictor" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData\notifications\QuotaManager" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData\notifications\QuotaManager-journal" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData\notifications\Visited Links" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData\notifications-websheet\Cookies" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData\notifications-websheet\Network Action Predictor" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData\Default\Cache\data_0" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData\Default\Cache\data_1" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData\Default\Cache\data_2" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData\Default\Cache\data_3" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData\Default\Cache\index" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData\Default\Extension State\000043.log" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData\Default\Extension State\LOCK" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData\Default\Extension State\MANIFEST-000042" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1\Cache\data_0" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1\Cache\data_1" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1\Cache\data_2" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1\Cache\data_3" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1\Cache\index" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1\Extension State\000041.log" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1\Extension State\LOCK" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1\Extension State\MANIFEST-000040" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1\Session Storage\000055.sst" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1\Session Storage\000057.sst" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1\Session Storage\000060.sst" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1\Session Storage\000061.log" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1\Session Storage\LOCK" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1\Session Storage\MANIFEST-000059" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1\User StyleSheets\Custom.css" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1-websheet\Cache\data_0" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1-websheet\Cache\data_1" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1-websheet\Cache\data_2" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1-websheet\Cache\data_3" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1-websheet\Cache\index" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1-websheet\Extension State\000041.log" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1-websheet\Extension State\LOCK" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1-websheet\Extension State\MANIFEST-000040" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData\notifications\Cache\data_0" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData\notifications\Cache\data_1" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData\notifications\Cache\data_2" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData\notifications\Cache\data_3" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData\notifications\Cache\index" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData\notifications\databases\Databases.db" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData\notifications\Extension State\000041.log" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData\notifications\Extension State\LOCK" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData\notifications\Extension State\MANIFEST-000040" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData\notifications\User StyleSheets\Custom.css" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData\notifications\databases\file__0\1" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData\notifications-websheet\Cache\data_0" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData\notifications-websheet\Cache\data_1" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData\notifications-websheet\Cache\data_2" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData\notifications-websheet\Cache\data_3" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData\notifications-websheet\Cache\index" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData\notifications-websheet\Extension State\000041.log" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData\notifications-websheet\Extension State\LOCK" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData\notifications-websheet\Extension State\MANIFEST-000040" deleted
"C:\PROGRA~2\MossNet\bin\MossNet.BrowserAdapter.exe" deleted
"C:\PROGRA~2\MossNet\bin\MossNet.BRT.Helper.exe" deleted
"C:\PROGRA~2\MossNet\bin\MossNet.PurBrowse64.exe" deleted
"C:\PROGRA~2\MossNet\bin\utilMossNet.exe" deleted
"C:\PROGRA~2\MossNet\bin\{22199461-0421-4e0a-af67-cd5f9b3ce6ef}.dll" deleted
"C:\PROGRA~2\MossNet\bin\{22199461-0421-4e0a-af67-cd5f9b3ce6ef}64.dll" deleted
"C:\Program Files (x86)\MyPC Backup" not deleted
"C:\Program Files (x86)\MossNet" not deleted
"C:\PROGRA~2\MyPC Backup" not deleted
"C:\Users\Jonas\AppData\Local\Pokki" not deleted
"C:\PROGRA~2\MossNet" not deleted
"C:\Program Files (x86)\MyPC Backup\Database" not deleted
"C:\Program Files (x86)\MyPC Backup\x64" not deleted
"C:\Program Files (x86)\MossNet\bin" not deleted
"C:\PROGRA~2\MyPC Backup\Database" not deleted
"C:\PROGRA~2\MyPC Backup\x64" not deleted
"C:\Users\Jonas\AppData\Local\Pokki\Engine" not deleted
"C:\Users\Jonas\AppData\Local\Pokki\Pokkies" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData\Default" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1-websheet" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData\notifications" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData\notifications-websheet" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData\Default\Cache" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData\Default\Extension State" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1\Cache" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1\Extension State" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1\Session Storage" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1\User StyleSheets" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1-websheet\Cache" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1-websheet\Extension State" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData\notifications\Cache" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData\notifications\databases" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData\notifications\Extension State" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData\notifications\User StyleSheets" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData\notifications\databases\file__0" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData\notifications-websheet\Cache" deleted
"C:\Users\Jonas\AppData\Local\Pokki\UserData\notifications-websheet\Extension State" deleted
"C:\PROGRA~2\MossNet\bin" not deleted

==== System Specs ======================

Windows: Windows Version 6.2 (Build 9200)
Memory (RAM): 8083 MB
CPU Info: Intel(R) Core(TM) i7-4702MQ CPU @ 2.20GHz
CPU Speed: 2233,5 MHz
Sound Card: Luidsprekers (Conexant SmartAud | 
Display Adapters: Intel(R) HD Graphics 4600 | Intel(R) HD Graphics 4600 | Intel(R) HD Graphics 4600 | NVIDIA GeForce GT 740M
Monitors: 1x; ThinkPad Display 1920x1080 | 
Screen Resolution: 1536 X 864 - 32 bit
Network: Network Present
Network Adapters: Microsoft Wi-Fi Direct Virtual Adapter | Microsoft Hosted Network Virtual Adapter | Realtek PCIe GBE Family Controller | Intel(R) Wireless-N 7260
CD / DVD Drives: 1x (D: | ) D: HL-DT-STDVDRAM GU90N
Ports: COM Ports NOT Present. LPT Port NOT Present. 
Mouse: 5 Button Wheel Mouse Present
Hard Disks: C:  912,2GB
Hard Disks - Free: C:  829,5GB
Manufacturer *: LENOVO
BIOS Info: AT/AT COMPATIBLE |  | LENOVO - 1610
Time Zone: Romance (standaardtijd)
Motherboard *: LENOVO 20C60044MB
Country: Belgi‰ 
Language: NLB 

==== System Specs (Software) ======================

Anti-Virus: Windows Defender On-access scanning disabled (Outdated)
Anti-Virus: Norton Internet Security On-access scanning disabled (Outdated)
Anti-Spyware: Norton Internet Security disabled (Outdated)
Anti-Spyware: Windows Defender disabled (Outdated)
Firewall: Norton Internet Security disabled
Default Browser: Google Chrome	36.0.1985.143
Internet Explorer Version: 11.0.9600.17239 
Google Chrome version: 36.0.1985.143
Sun Java version: 1.7.0_67 (32-bit) 

==== Files Recently Created / Modified ======================

====== C:\WINDOWS ====
2014-08-22 13:32:22	6AD96F00348B5D3F807170DAD8068209	146	----a-w-	C:\WINDOWS\launchpw.cmd
2014-08-22 13:32:15	74F8AE1B93B29838EB06A3104F61E914	1577	----a-w-	C:\WINDOWS\Delfg.cmd
2014-08-22 13:32:00	B125C21872B0EEF88AAD6EC1027AAC28	6	----a-w-	C:\WINDOWS\systemtype.txt
2014-08-22 13:30:07	2357AB4ECD955A06DEF6204E42ABB5C0	147160	----a-w-	C:\WINDOWS\RtsCM64.exe
2014-08-22 13:30:06	CE11BF624331D74F57E482A9B52C71DE	2628312	----a-w-	C:\WINDOWS\RtCamU64.exe
2014-08-16 09:34:55	CB0A4CACEB3CB41983FDE2945C99F3D2	2374816	----a-w-	C:\WINDOWS\explorer.exe
2014-08-14 22:02:46	02F6222BB4739BEE9AC27EC5DE273F89	38103	----a-w-	C:\WINDOWS\diagwrn.xml
2014-08-14 22:02:46	02F6222BB4739BEE9AC27EC5DE273F89	38103	----a-w-	C:\WINDOWS\diagerr.xml
====== C:\Users\Jonas\AppData\Local\Temp ====
2014-09-04 14:14:17	D11FB7A5078631BE2E183DC56FCD5375	43008	----a-w-	C:\Users\Jonas\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpqfmnit.dll
2014-09-04 14:08:03	D11FB7A5078631BE2E183DC56FCD5375	43008	----a-w-	C:\Users\Jonas\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpb839dw.dll
2014-09-04 13:02:51	F5769E5DBD8867FA6A465A4A8DD69C87	98304	----a-w-	C:\Users\Jonas\AppData\Local\Temp\post2.exe
2014-09-04 13:02:51	5BBC53F7CA4D98D30EF31DA67D89ABDE	86528	----a-w-	C:\Users\Jonas\AppData\Local\Temp\post2.dll
2014-09-04 13:01:49	E8D6394AE9C4B0DB79FDBC681811BA30	353472	----a-w-	C:\Users\Jonas\AppData\Local\Temp\Activation Code Downloader__9168_il154.exe
2014-09-04 12:57:16	40395C175553CB14D2050888EFCCDF00	4961800	----a-w-	C:\Users\Jonas\AppData\Local\Temp\vcredist_x64.exe
2014-09-04 12:56:59	3F18ED408F2ED4C7BC302CF1B4EA5C52	5597584	----a-w-	C:\Users\Jonas\AppData\Local\Temp\CloudBackup2550.exe
2014-09-04 12:56:47	FADFD07238928EC847A8ACC23AE67B33	58603008	----a-w-	C:\Users\Jonas\AppData\Local\Temp\is360511915\4759DF23_stp.MSI
2014-09-04 12:48:17	438CA94BA7FDA10FF9C17E7D912169F0	55808	----a-w-	C:\Users\Jonas\AppData\Local\Temp\NitroPDF_KM_b9d3c02807770664f9f0fc4c30da7b1a\Nitro_KissMetrics.dll
2014-08-22 14:13:12	7AF8BE63F9DDC5169F1E3D84C23D2B6B	1022080	----a-w-	C:\Users\Jonas\AppData\Local\Temp\NBRT-Retail-Downloader.exe
2014-08-22 13:31:55	B83D2774CDAF5016CD8765A630FA1150	107392	----a-w-	C:\Users\Jonas\AppData\Local\Temp\{F68C3ED4-F792-4B29-927F-8D7C7871B326}\ISBEW64.exe
====== Java Cache =====
2014-08-15 08:03:19	8C85FA7453DC2477925F167C4F779FBA	98	----a-w-	C:\Users\Jonas\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\23\793b97d7-d7202deea8825cdca0fd5ac4314b2d1c13e5459ffee8840ff6178541e12126a7-6.0.lap
2014-08-15 08:03:14	B29888079EADEE30CCFFEE922B4B1534	91	----a-w-	C:\Users\Jonas\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\36\6e58e8a4-15b88512a978c209ad6397aa4802599062d6f653efaff88629b87aee35c717d4-6.0.lap
2014-08-22 13:36:40	B3C19C47469361B03AB27A672FE04E4B	4569	----a-w-	C:\Users\Jonas\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\43\582f636b-3c631eca
2014-08-15 08:02:02	E8C80BF60938EE72EE77AB866EA40E2B	282048	----a-w-	C:\Users\Jonas\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\45\7e60542d-695e431f
2014-08-15 08:03:19	07952221429B319B3032E568EA2A5DC5	126826	----a-w-	C:\Users\Jonas\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\47\2a96bbef-177b1359
2014-08-15 08:01:58	0B23B3044AE9E02DCE26DB4D5E007252	848	----a-w-	C:\Users\Jonas\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\58\31b19ba-18017b84
2014-08-15 08:03:14	DECAA783A91B4A5F0919201A7B77D12E	4600	----a-w-	C:\Users\Jonas\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\59\224b583b-65531764
2014-08-15 08:02:02	0B23B3044AE9E02DCE26DB4D5E007252	848	----a-w-	C:\Users\Jonas\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\7\2bbaaf87-22f1306d
2014-08-15 08:02:02	236113CC80DD4A1CA771750997115EE2	107	----a-w-	C:\Users\Jonas\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\7\2bbaaf87-e2e4c8970372d2fb4193a7ef29d16f6c3f08527947fcb9208b3a0e48820369fd-6.0.lap
2014-08-15 15:53:54	D41D8CD98F00B204E9800998ECF8427E	0	----a-w-	C:\Users\Jonas\AppData\LocalLow\Sun\Java\Deployment\SystemCache\6.0\32\6c34baa0-1a2fd3f0
====== C:\WINDOWS\SysWOW64 =====
2014-08-22 13:37:29	3F1A15E7D8AC5FA0967AFD41415A0849	405232	----a-w-	C:\WINDOWS\SysWOW64\SynCom.dll
2014-08-22 13:31:58	B8DE851298E99A005BFD34AA906B3FE8	4456520	----a-w-	C:\WINDOWS\SysWOW64\mfc110u.dll
2014-08-22 13:31:58	B0ED011CD9D227713229788C7E1EE1C7	98304	----a-w-	C:\WINDOWS\SysWOW64\mfcm110.dll
2014-08-22 13:31:58	95172EA2460866CCA0F2620CF9F579A4	98304	----a-w-	C:\WINDOWS\SysWOW64\mfcm110u.dll
2014-08-22 13:31:57	9483C19E31F865FE410AC5A4331C2F56	4423680	----a-w-	C:\WINDOWS\SysWOW64\mfc110.dll
2014-08-22 13:30:06	D23F66A57000C1B6C0A40B70A94F3E0C	421080	----a-w-	C:\WINDOWS\SysWOW64\RtCamX.dll
====== C:\WINDOWS\SysWOW64\drivers =====
====== C:\WINDOWS\Sysnative =====
2014-09-04 14:06:48	8265CD5C67D0A35DFC40F3D1A8AC994C	94656	----a-w-	C:\WINDOWS\Sysnative\WPRO_41_2001woem.tmp
2014-09-04 12:50:09	DCC999442A98921A6152F2DA297833A0	29704	----a-w-	C:\WINDOWS\Sysnative\nitrolocalmon9.dll
2014-09-04 12:50:09	4051E629F4926B7DD51F5F8DC0F48C82	17928	----a-w-	C:\WINDOWS\Sysnative\nitrolocalui9.dll
2014-09-02 21:14:36	568D6F1C730EC3A9B381F01020D600DC	4148224	----a-w-	C:\WINDOWS\Sysnative\win32k.sys
2014-08-22 13:37:30	990ABAC0FC75D5D9D364B50CEF6738E0	254704	----a-w-	C:\WINDOWS\Sysnative\SynTPAPI.dll
2014-08-22 13:37:30	28E9787C214B7921CDE56E3A2592FF62	208112	----a-w-	C:\WINDOWS\Sysnative\SynTPCo20.dll
2014-08-22 13:31:59	F7A1EF7E3D0A6EDBE8D42B63222FDC66	98304	----a-w-	C:\WINDOWS\Sysnative\mfcm110u.dll
2014-08-22 13:31:59	CF78AC5EE16BB2C6F72799EB0E1ACA8A	5636096	----a-w-	C:\WINDOWS\Sysnative\mfc110u.dll
2014-08-22 13:31:59	BD50179D8851357EF78A102C59D74F36	5603328	----a-w-	C:\WINDOWS\Sysnative\mfc110.dll
2014-08-22 13:31:59	9B5DC91AA93B18D9FF98F72A98EF9F71	98304	----a-w-	C:\WINDOWS\Sysnative\mfcm110.dll
2014-08-22 13:30:06	7053260513F6288F022B5FB50CF18652	473304	----a-w-	C:\WINDOWS\Sysnative\RtCamX64.dll
2014-08-22 13:27:42	FAC24F4CC63235D9533DD6605E5EE6F0	1938608	----a-w-	C:\WINDOWS\Sysnative\DDPD64A.dll
2014-08-22 13:27:42	ED0F6E385087FF5C1CEC274AA8FA2409	1790168	----a-w-	C:\WINDOWS\Sysnative\CX64AP86.dll
2014-08-22 13:27:42	DD530D44CFB0C3936FE29F1C2435ED5F	944832	----a-w-	C:\WINDOWS\Sysnative\CX64BP07.dll
2014-08-22 13:27:42	B827E0AE582ACD641F0B2B052773A5CA	6217904	----a-w-	C:\WINDOWS\Sysnative\DDPP64A.dll
2014-08-22 13:27:42	A1C8F811777EFA1B6BD82B226016CF2D	313520	----a-w-	C:\WINDOWS\Sysnative\DDPO64A.dll
2014-08-22 13:27:42	922CDA544EB5C5A57795B38ED5871B69	2743328	----a-w-	C:\WINDOWS\Sysnative\FMAPO64.dll
2014-08-22 13:27:42	8BA1F11450562988C2E535778E230149	666240	----a-w-	C:\WINDOWS\Sysnative\C3DHPExt64.dll
2014-08-22 13:27:42	82DF29C6D5571BFA69429563F0AED677	260272	----a-w-	C:\WINDOWS\Sysnative\DDPA64.dll
2014-08-22 13:27:42	76A59295068F14BAC25C300909868734	2844376	----a-w-	C:\WINDOWS\Sysnative\UCI64A45.DLL
2014-08-22 13:27:42	48982164BC66BF09F6375AFFD2830B6A	406208	----a-w-	C:\WINDOWS\Sysnative\CSpkExt64.dll
2014-08-22 13:27:42	115F6DEE256F1921ABB83BE0659FBCD3	50848	----a-w-	C:\WINDOWS\Sysnative\CxPageMaster64.dll
====== C:\WINDOWS\Sysnative\drivers =====
2014-09-04 14:08:05	0D262BF3AE529ED17F409DD6E864C8DE	20	----a-w-	C:\WINDOWS\Sysnative\drivers\SMR410.dat
2014-09-04 14:08:04	35AE23A825E89110DFC1BDA69F26F263	96856	----a-w-	C:\WINDOWS\Sysnative\drivers\SMR410.SYS
2014-09-04 13:02:54	D41D8CD98F00B204E9800998ECF8427E	0	---ha-w-	C:\WINDOWS\Sysnative\drivers\Msft_Kernel_webinstr_01009.Wdf
2014-08-22 13:37:56	D41D8CD98F00B204E9800998ECF8427E	0	---ha-w-	C:\WINDOWS\Sysnative\drivers\Msft_Kernel_SynTP_01011.Wdf
2014-08-22 13:37:46	D41D8CD98F00B204E9800998ECF8427E	0	---ha-w-	C:\WINDOWS\Sysnative\drivers\Msft_Kernel_Smb_driver_Intel_01011.Wdf
2014-08-22 13:37:30	16021E640CFA11BFA5F4D789322CFC39	554224	----a-w-	C:\WINDOWS\Sysnative\drivers\SynTP.sys
2014-08-22 13:37:28	7C5B431BB6CD52C46295D9752C1C5A45	31472	----a-w-	C:\WINDOWS\Sysnative\drivers\Smb_driver_Intel.sys
2014-08-22 13:32:57	D41D8CD98F00B204E9800998ECF8427E	0	---ha-w-	C:\WINDOWS\Sysnative\drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
2014-08-22 13:32:50	E0EF6C1399A9B1AAA0B28590411BED04	99288	----a-w-	C:\WINDOWS\Sysnative\drivers\TeeDriverx64.sys
2014-08-22 13:31:33	E3F57FEBB3498C7AB35704365927A073	77456	----a-w-	C:\WINDOWS\Sysnative\drivers\IntelPcc.sys
2014-08-22 13:30:07	CF98486D57F8C6F402A8D068B78EAD90	8244312	----a-w-	C:\WINDOWS\Sysnative\drivers\rtsuvc.sys
2014-08-22 13:27:42	E49404E4B6F590F08F95E5EF02AEA916	1464000	----a-w-	C:\WINDOWS\Sysnative\drivers\CHDRT64.sys
2014-08-22 13:27:42	40F24A4A58D758D10E0BCE72F050988A	30893	----a-w-	C:\WINDOWS\Sysnative\drivers\Mixer.ini
2014-08-16 10:46:57	6416E79A58A8FCC33A447A4DDDD3BF04	412160	----a-w-	C:\WINDOWS\Sysnative\drivers\srv.sys
2014-08-16 10:46:56	FEBAA7D782E30882FFF1CBCBBE8AD467	2515264	----a-w-	C:\WINDOWS\Sysnative\drivers\tcpip.sys
2014-08-16 10:46:56	97B9076611291AE4C4C107BC915BD026	1200640	-c--a-w-	C:\WINDOWS\Sysnative\drivers\bthport.sys
2014-08-16 10:46:56	77E1D08EF3BFB923F2EDC3FC8089E08E	475968	----a-w-	C:\WINDOWS\Sysnative\drivers\netio.sys
2014-08-16 10:46:56	5BED3AB69797C8786EF70AEA8C33748B	674816	----a-w-	C:\WINDOWS\Sysnative\drivers\srv2.sys
2014-08-16 10:46:56	038C77D577900EE39410662478BB0D50	2009920	----a-w-	C:\WINDOWS\Sysnative\drivers\ntfs.sys
2014-08-16 10:46:55	FF78D053A05E5A394F4E3C1816CC65A8	143680	-c--a-w-	C:\WINDOWS\Sysnative\drivers\usbccgp.sys
2014-08-16 10:46:55	65392F3F3F65E4C6CC82A0F4F8A0B051	468288	-c--a-w-	C:\WINDOWS\Sysnative\drivers\USBHUB3.SYS
2014-08-16 10:46:55	240C5C3793206725AA05665851E8C214	412992	-c--a-w-	C:\WINDOWS\Sysnative\drivers\spaceport.sys
2014-08-16 10:46:54	FEF0BC107812B36849741C3211BA6B60	419648	-c--a-w-	C:\WINDOWS\Sysnative\drivers\usbhub.sys
2014-08-16 10:46:54	D047CD668E6277FD80F0C613946F034C	246272	----a-w-	C:\WINDOWS\Sysnative\drivers\srvnet.sys
2014-08-16 10:46:54	64CA2B4A49A8EAF495E435623ECCE7DB	310080	-c--a-w-	C:\WINDOWS\Sysnative\drivers\volsnap.sys
2014-08-16 10:46:54	26ACA481FAFEC59FE311D719E3027BBA	446976	----a-w-	C:\WINDOWS\Sysnative\drivers\nwifi.sys
2014-08-16 10:46:53	5B1EDAFD02AEA9345C24F0B6537CC8A0	149312	----a-w-	C:\WINDOWS\Sysnative\drivers\msgpioclx.sys
2014-08-16 10:46:52	E4B4BE2D7750849C07589DA0B0AABA01	1118040	----a-w-	C:\WINDOWS\Sysnative\drivers\ndis.sys
2014-08-16 10:46:52	E0927EFA25D473367C3341B9F5969779	115712	----a-w-	C:\WINDOWS\Sysnative\drivers\bridge.sys
2014-08-16 10:46:52	D4B7ED39C7900384D9E5C1283F1E7926	76800	-c--a-w-	C:\WINDOWS\Sysnative\drivers\hdaudbus.sys
2014-08-16 10:46:52	C910E5D18958914A66F0E45689D0B40A	206848	----a-w-	C:\WINDOWS\Sysnative\drivers\mrxsmb20.sys
2014-08-16 10:46:52	B1AA3B19A2E596A59224F893E01A5A75	126464	----a-w-	C:\WINDOWS\Sysnative\drivers\NdisImPlatform.sys
2014-08-16 10:46:50	91ED124E261EA8FAA1C0FFDF2A71B0C4	280384	-c--a-w-	C:\WINDOWS\Sysnative\drivers\pci.sys
2014-08-16 10:46:49	9C096BF5E10CA8BFA56F32522A89FAF1	79872	----a-w-	C:\WINDOWS\Sysnative\drivers\IPMIDrv.sys
2014-08-16 10:46:49	1DD05F4857C2188744B9E864658949DD	295424	----a-w-	C:\WINDOWS\Sysnative\drivers\ks.sys
2014-08-16 10:46:48	25BB93167DEF270188072603F92A1EF5	118272	-c--a-w-	C:\WINDOWS\Sysnative\drivers\bthpan.sys
2014-08-15 08:38:32	8E98D21EE06192492A5671A6144D092F	33240	----a-w-	C:\WINDOWS\Sysnative\drivers\GEARAspiWDM.sys
2014-08-15 07:52:40	7A1A3F213CDB3363D179D5014272025D	402432	----a-w-	C:\WINDOWS\Sysnative\drivers\mrxsmb.sys
2014-08-15 07:52:39	674A4702E4E144E8710ED1A2EC6DD049	96768	----a-w-	C:\WINDOWS\Sysnative\drivers\agilevpn.sys
2014-08-15 07:52:39	65ED7B9CFEA893DF7748D5FF692690DE	38912	----a-w-	C:\WINDOWS\Sysnative\drivers\vwifimp.sys
2014-08-15 07:52:39	35BF5C5F5E3C9902C98978C7640574DA	71680	----a-w-	C:\WINDOWS\Sysnative\drivers\vwififlt.sys
2014-08-14 22:50:37	313DCE665B57000B18CB26C6B6A10DFE	1557848	----a-w-	C:\WINDOWS\Sysnative\drivers\dxgkrnl.sys
2014-08-14 22:47:51	BFBE1C5F57FE7A885673A1962D5532B7	136024	----a-w-	C:\WINDOWS\Sysnative\drivers\wfplwfs.sys
2014-08-14 22:47:51	ABB7341766902F5AAB45E15F34D19E15	111616	-c--a-w-	C:\WINDOWS\Sysnative\drivers\hidclass.sys
2014-08-14 22:47:51	A03F362C5557E238CBFA914689C77248	134144	----a-w-	C:\WINDOWS\Sysnative\drivers\dfsc.sys
2014-08-14 22:47:51	8DB8EAB9D0C6A5DF0BDCADEA239220B4	33280	-c--a-w-	C:\WINDOWS\Sysnative\drivers\hidusb.sys
2014-08-14 22:47:51	7FC5667DF73D4B04AA457CC3A4180E09	157016	----a-w-	C:\WINDOWS\Sysnative\drivers\wof.sys
2014-08-14 22:47:51	41CF802064F72E55F50CA0A221FD36D4	49152	----a-w-	C:\WINDOWS\Sysnative\drivers\tcpipreg.sys
2014-08-14 22:47:51	4030CB06B8D963A45CED9E60C9F2A11E	379224	----a-w-	C:\WINDOWS\Sysnative\drivers\dxgmms1.sys
2014-08-14 22:47:51	3E28B99198B514DFEB152EACF913025E	283648	----a-w-	C:\WINDOWS\Sysnative\drivers\mrxsmb10.sys
2014-08-14 22:47:51	1D55DADC22D21883A2F80297F5A5AE48	140288	----a-w-	C:\WINDOWS\Sysnative\drivers\mrxdav.sys
2014-08-14 22:47:51	179A41249055D5F039F1B6703F3B6D2B	376152	----a-w-	C:\WINDOWS\Sysnative\drivers\clfs.sys
2014-08-14 22:46:29	FE0ADF5028EB8C1339B66B3AEDE3FEF9	440664	-c--a-w-	C:\WINDOWS\Sysnative\drivers\usbport.sys
2014-08-14 22:46:29	D79920BE4E6683D3AB50F71457A4F6C6	27480	-c--a-w-	C:\WINDOWS\Sysnative\drivers\usbd.sys
2014-08-14 22:46:29	D537815E450A149752C15868392AD1F3	110592	----a-w-	C:\WINDOWS\Sysnative\drivers\WUDFPf.sys
2014-08-14 22:46:29	7CCBBCEE408A5DBE3FE47297DB5A6CFC	227840	----a-w-	C:\WINDOWS\Sysnative\drivers\WUDFRd.sys
2014-08-14 22:46:29	48BA326A3DBA5B5BEB5F2777F4618696	89944	-c--a-w-	C:\WINDOWS\Sysnative\drivers\usbehci.sys
2014-08-14 22:46:29	064260B3A5868AC894A4943543BC7AB7	37376	-c--a-w-	C:\WINDOWS\Sysnative\drivers\usbuhci.sys
2014-08-14 22:46:09	1CD3A907D64D08F49208DA00B69BF35E	565576	----a-w-	C:\WINDOWS\Sysnative\drivers\cng.sys
2014-08-14 22:44:32	374E27295F0A9DCAA8FC96370F9BEEA5	563200	----a-w-	C:\WINDOWS\Sysnative\drivers\afd.sys
2014-08-14 22:40:05	182561A14F2E93E81E66FE3700D17A5A	55328	----a-w-	C:\WINDOWS\Sysnative\drivers\wpcfltr.sys
2014-08-14 22:39:48	F5D4FA3E1F4879C361FFF3855259D2C2	35856	----a-w-	C:\WINDOWS\Sysnative\drivers\WdBoot.sys
2014-08-14 22:39:48	6CC1BB8F6851A262E2E824F0E92D5EEF	123224	----a-w-	C:\WINDOWS\Sysnative\drivers\WdNisDrv.sys
2014-08-14 22:39:48	019CC610AD95FF47EAD7C08B7A683B96	257880	----a-w-	C:\WINDOWS\Sysnative\drivers\WdFilter.sys
2014-08-14 22:39:23	F152D55E497E12256290C43B31C7D0CE	589656	----a-w-	C:\WINDOWS\Sysnative\drivers\fvevol.sys
2014-08-14 22:39:23	4C1E71E37B56C768900B1FCF81205027	372568	----a-w-	C:\WINDOWS\Sysnative\drivers\storport.sys
2014-08-14 22:39:22	F88CC88F4A6D8476F1664E805CA18CC2	180056	----a-w-	C:\WINDOWS\Sysnative\drivers\ksecpkg.sys
2014-08-14 22:39:22	D90AB68D0FAC9F357F663670FDBB511E	275800	-c--a-w-	C:\WINDOWS\Sysnative\drivers\msiscsi.sys
2014-08-14 22:39:22	CADCE0D6C30427F70A4BFA426256F68C	337240	----a-w-	C:\WINDOWS\Sysnative\drivers\Classpnp.sys
2014-08-14 22:39:22	8FCE57F7E5CDA5751FDE01A316180488	428888	----a-w-	C:\WINDOWS\Sysnative\drivers\FWPKCLNT.SYS
2014-08-14 22:39:22	6592D192E2823C043EDBC010E7774053	360792	----a-w-	C:\WINDOWS\Sysnative\drivers\fltMgr.sys
2014-08-14 21:56:48	D41D8CD98F00B204E9800998ECF8427E	0	---ha-w-	C:\WINDOWS\Sysnative\drivers\Msft_User_wbf_vfs_lvcmn_01_09_00.Wdf
2014-08-14 21:56:40	D41D8CD98F00B204E9800998ECF8427E	0	---ha-w-	C:\WINDOWS\Sysnative\drivers\Msft_Kernel_SynTP_01009.Wdf
2014-08-14 21:55:55	D41D8CD98F00B204E9800998ECF8427E	0	---ha-w-	C:\WINDOWS\Sysnative\drivers\Msft_Kernel_Smb_driver_Intel_01009.Wdf
2014-08-14 21:55:32	D41D8CD98F00B204E9800998ECF8427E	0	---ha-w-	C:\WINDOWS\Sysnative\drivers\Msft_Kernel_btmhsf_01011.Wdf
2014-08-14 12:08:07	D41D8CD98F00B204E9800998ECF8427E	0	---ha-w-	C:\WINDOWS\Sysnative\drivers\Msft_User_LocationProvider_01_11_00.Wdf
2014-08-14 10:25:41	D41D8CD98F00B204E9800998ECF8427E	0	---ha-w-	C:\WINDOWS\Sysnative\drivers\Msft_Kernel_ldiagio_uefi_01009.Wdf
====== C:\WINDOWS\Tasks ======
2014-08-15 16:07:25	1B4CE629D7980B78377F72E7168FAF94	3550	----a-w-	C:\WINDOWS\Sysnative\Tasks\CreateChoiceProcessTask
2014-08-15 08:38:10	--------	d-----w-	C:\WINDOWS\Sysnative\Tasks\Apple
2014-08-15 07:42:32	839141B0089B5F7F80FA8C47279425B4	3958	----a-w-	C:\WINDOWS\Sysnative\Tasks\User_Feed_Synchronization-{1859D41D-EF33-46DC-9BC3-A2AE1D6054ED}
2014-08-14 11:28:11	C77EDDB1BC6EB96245D90766E60A84B8	3598	----a-w-	C:\WINDOWS\Sysnative\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2856834796-3624118678-1303184682-1005
2014-08-13 20:07:57	C4B9547C5D984EA22F1875E54EDBC908	4044	----a-w-	C:\WINDOWS\Sysnative\Tasks\GoogleUpdateTaskMachineUA
2014-08-13 20:07:56	E7A04BF8E5DF4D17234A519FDA957F2A	3808	----a-w-	C:\WINDOWS\Sysnative\Tasks\GoogleUpdateTaskMachineCore
2014-08-13 20:07:56	52F0E3335FF2CE3EAC7FB9BAE4137506	1068	----a-w-	C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-08-13 20:07:56	398E8495395662C10555F291C8E965E8	1072	----a-w-	C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-08-13 19:31:39	08D0E2F58729D9958B7F6C5D241F1366	3598	----a-w-	C:\WINDOWS\Sysnative\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2856834796-3624118678-1303184682-1002
====== C:\WINDOWS\Temp ======
======= C:\Program Files =====
2014-09-04 15:17:00	--------	d-----w-	C:\Program Files\trend micro
2014-09-04 12:57:04	--------	d-----w-	C:\Program Files\WinZip
2014-09-04 12:49:55	--------	d-----w-	C:\Program Files\Nitro
2014-08-22 13:35:53	--------	d-----w-	C:\Program Files\Common Files\Intel
2014-08-16 10:47:48	--------	d-----w-	C:\Program Files\Microsoft Silverlight
2014-08-15 08:38:18	--------	d-----w-	C:\Program Files\iTunes
2014-08-15 08:38:18	--------	d-----w-	C:\Program Files\iPod
2014-08-15 08:38:06	--------	d-----w-	C:\Program Files\Common Files\Apple
2014-08-15 08:37:52	--------	d-----w-	C:\Program Files\Bonjour
2014-08-14 22:36:08	--------	d-----w-	C:\Program Files\Reference Assemblies
2014-08-14 22:36:08	--------	d-----w-	C:\Program Files\MSBuild
2014-08-14 21:56:01	--------	d-----w-	C:\Program Files\NVIDIA Corporation
2014-08-14 21:55:56	--------	d-----w-	C:\Program Files\CONEXANT
2014-08-14 21:55:55	--------	d-----w-	C:\Program Files\Synaptics
2014-08-14 21:55:40	--------	d-----w-	C:\Program Files\Intel
2014-08-14 16:26:01	--------	d-----w-	C:\Program Files\Microsoft Office
======= C:\PROGRA~2 =====
2014-09-04 12:57:21	--------	d-----w-	C:\PROGRA~2\MyPC Backup
2014-09-02 16:25:16	--------	d-----w-	C:\PROGRA~2\Diablo III
2014-09-02 16:19:13	--------	d-----w-	C:\PROGRA~2\COMMON~1\Blizzard Entertainment
2014-09-02 16:19:13	--------	d-----w-	C:\PROGRA~2\Battle.net
2014-08-22 13:35:53	--------	d-----w-	C:\PROGRA~2\Cisco
2014-08-16 10:47:48	--------	d-----w-	C:\PROGRA~2\Microsoft Silverlight
2014-08-15 08:38:18	--------	d-----w-	C:\PROGRA~2\iTunes
2014-08-15 08:38:09	--------	d-----w-	C:\PROGRA~2\Apple Software Update
2014-08-15 08:37:52	--------	d-----w-	C:\PROGRA~2\Bonjour
2014-08-15 08:37:42	--------	d-----w-	C:\PROGRA~2\COMMON~1\Apple
2014-08-15 08:01:26	--------	d-----w-	C:\PROGRA~2\COMMON~1\Java
2014-08-15 08:01:20	--------	d-----w-	C:\PROGRA~2\Java
2014-08-15 07:46:53	--------	d-----w-	C:\PROGRA~2\COMMON~1\Intel
2014-08-14 22:36:10	--------	d-----w-	C:\PROGRA~2\Reference Assemblies
2014-08-14 22:36:10	--------	d-----w-	C:\PROGRA~2\MSBuild
2014-08-14 21:56:01	--------	d-----w-	C:\PROGRA~2\NVIDIA Corporation
2014-08-14 16:44:39	--------	d-----w-	C:\PROGRA~2\TeamViewer
2014-08-14 16:29:02	--------	d-----w-	C:\PROGRA~2\COMMON~1\DESIGNER
2014-08-14 16:27:45	--------	d-----w-	C:\PROGRA~2\Microsoft SQL Server
2014-08-14 16:26:22	--------	d-----w-	C:\PROGRA~2\Microsoft Analysis Services
2014-08-14 14:51:37	--------	d-----w-	C:\PROGRA~2\VideoLAN
2014-08-14 14:50:44	--------	d-----w-	C:\PROGRA~2\MossNet
2014-08-13 20:07:55	--------	d-----w-	C:\PROGRA~2\Google
======= C: =====
====== C:\Users\Jonas\AppData\Roaming ======
2014-09-04 12:57:14	--------	d-----w-	C:\Users\Jonas\AppData\Local\WinZip
2014-09-04 12:48:17	--------	d-----w-	C:\Users\Jonas\AppData\Roaming\Downloaded Installations
2014-09-02 16:19:27	--------	d-----w-	C:\Users\Jonas\AppData\Local\Blizzard Entertainment
2014-09-02 16:19:20	--------	d-----w-	C:\Users\Jonas\AppData\Roaming\Battle.net
2014-09-02 16:19:20	--------	d-----w-	C:\Users\Jonas\AppData\Local\Battle.net
2014-08-22 13:55:46	--------	d-----w-	C:\Users\Jonas\AppData\Local\NPE
2014-08-22 13:33:25	--------	d-----w-	C:\Users\Jonas\AppData\Locallow\Intel
2014-08-16 11:11:33	--------	d-----w-	C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\CrashDumps
2014-08-15 15:36:42	--------	d-----w-	C:\Users\Default\AppData\Local\Microsoft Help
2014-08-15 15:36:42	--------	d-----w-	C:\Users\Default User\AppData\Local\Microsoft Help
2014-08-15 08:38:48	--------	d-----w-	C:\Users\Jonas\AppData\Roaming\Apple Computer
2014-08-15 08:38:48	--------	d-----w-	C:\Users\Jonas\AppData\Local\Apple Computer
2014-08-15 08:38:10	--------	d-----w-	C:\Users\Jonas\AppData\Local\Apple
2014-08-15 08:38:08	--------	d-----w-	C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Roaming\Apple Computer
2014-08-15 08:02:09	--------	d-----w-	C:\Users\Jonas\AppData\Roaming\Oracle
2014-08-15 08:00:02	--------	d-----w-	C:\Users\Jonas\AppData\Locallow\Sun
2014-08-15 07:42:34	--------	d-sh--w-	C:\Users\Jonas\AppData\Locallow\EmieUserList
2014-08-15 07:42:23	--------	d-sh--w-	C:\Users\Jonas\AppData\Local\EmieUserList
2014-08-15 07:42:23	--------	d-sh--w-	C:\Users\Jonas\AppData\Local\EmieSiteList
2014-08-15 07:42:19	--------	d-sh--w-	C:\Users\Jonas\AppData\Locallow\EmieSiteList
2014-08-15 07:41:54	--------	d-----w-	C:\Users\Jonas\AppData\Local\Diagnostics
2014-08-14 22:38:05	--------	d-----w-	C:\WINDOWS\SysNative\config\systemprofile\AppData\Roaming\Microsoft
2014-08-14 22:19:53	--------	d-s---w-	C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Locallow\Microsoft
2014-08-14 22:19:46	--------	d-s---w-	C:\WINDOWS\SysNative\config\systemprofile\AppData\Locallow\Microsoft
2014-08-14 22:19:16	--------	d-----w-	C:\WINDOWS\SysNative\config\systemprofile\AppData\Roaming\Adobe
2014-08-14 22:14:01	--------	d-----w-	C:\WINDOWS\SysNative\config\systemprofile\AppData\Roaming\Intel
2014-08-14 22:02:57	--------	d-s---w-	C:\Users\UpdatusUser\AppData\Roaming\Microsoft
2014-08-14 22:02:57	--------	d-----w-	C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-08-14 22:02:57	--------	d-----w-	C:\Users\UpdatusUser\AppData\Local\Temp
2014-08-14 22:02:57	--------	d-----w-	C:\Users\UpdatusUser\AppData\Local\Microsoft
2014-08-14 22:02:57	--------	d-----r-	C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-08-14 22:02:57	--------	d-----r-	C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-08-14 22:02:57	--------	d-----r-	C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-08-14 22:02:56	--------	d-s---w-	C:\Users\Jonas\AppData\Roaming\Microsoft
2014-08-14 22:02:56	--------	d-----w-	C:\Users\Jonas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-08-14 22:02:56	--------	d-----w-	C:\Users\Jonas\AppData\Local\Temp
2014-08-14 22:02:56	--------	d-----w-	C:\Users\Jonas\AppData\Local\Microsoft
2014-08-14 22:02:56	--------	d-----r-	C:\Users\Jonas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-08-14 22:02:56	--------	d-----r-	C:\Users\Jonas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-08-14 22:02:56	--------	d-----r-	C:\Users\Jonas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-08-14 22:02:55	--------	d-s---w-	C:\Users\danny_000\AppData\Roaming\Microsoft
2014-08-14 22:02:55	--------	d-----w-	C:\Users\danny_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-08-14 22:02:55	--------	d-----w-	C:\Users\danny_000\AppData\Local\Temp
2014-08-14 22:02:55	--------	d-----w-	C:\Users\danny_000\AppData\Local\Microsoft
2014-08-14 22:02:55	--------	d-----r-	C:\Users\danny_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-08-14 22:02:55	--------	d-----r-	C:\Users\danny_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-08-14 22:02:55	--------	d-----r-	C:\Users\danny_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-08-14 21:56:19	--------	d-----w-	C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft
2014-08-14 19:54:10	--------	d-----w-	C:\Users\Jonas\AppData\Roaming\uTorrent
2014-08-14 16:44:41	--------	d-----w-	C:\Users\Jonas\AppData\Roaming\TeamViewer
2014-08-14 16:35:55	--------	d-----w-	C:\Users\Jonas\AppData\Roaming\Identities
2014-08-14 15:43:41	--------	d-----w-	C:\Users\danny_000\AppData\Local\CrashDumps
2014-08-14 15:31:12	--------	d-----w-	C:\Users\Jonas\AppData\Local\Tvsukernel
2014-08-14 14:52:32	--------	d-----w-	C:\Users\Jonas\AppData\Roaming\vlc
2014-08-14 12:57:25	--------	d-----w-	C:\Users\Jonas\AppData\Local\Microsoft Help
2014-08-14 11:43:06	--------	d-----w-	C:\Users\Jonas\AppData\Local\Adobe
2014-08-14 11:25:54	--------	d-----w-	C:\Users\danny_000\AppData\Local\Adobe
2014-08-14 11:25:25	--------	d-----w-	C:\Users\danny_000\AppData\Roaming\LSC
2014-08-14 11:22:08	--------	d-----r-	C:\Users\danny_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-08-14 11:22:08	--------	d-----r-	C:\Users\danny_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-08-14 11:21:48	--------	d-----w-	C:\Users\danny_000\AppData\Roaming\Adobe
2014-08-14 11:21:47	--------	d-----w-	C:\Users\danny_000\AppData\Local\Google
2014-08-14 11:21:26	--------	d-----w-	C:\Users\danny_000\AppData\Local\Absolute_Software
2014-08-14 11:21:24	D41D8CD98F00B204E9800998ECF8427E	0	----a-w-	C:\Users\danny_000\AppData\Roaming\AbsoluteReminder.xml
2014-08-14 11:20:44	--------	d-----w-	C:\Users\danny_000\AppData\Local\Lenovo
2014-08-14 11:20:34	31C5D5CF68BCAED66DBBCCBD424C899C	271	----a-w-	C:\Users\danny_000\AppData\Local\RegisteredPackageInformation.xml
2014-08-14 11:20:28	--------	d-----w-	C:\Users\danny_000\AppData\Local\Packages
2014-08-14 11:20:22	--------	d-----w-	C:\Users\danny_000\AppData\Roaming\Intel
2014-08-14 11:20:19	--------	d-s---w-	C:\Users\danny_000\AppData\Locallow\Microsoft
2014-08-14 11:12:54	--------	d-----w-	C:\Users\Jonas\AppData\Roaming\Nitro
2014-08-14 11:12:53	--------	d-----w-	C:\Users\Jonas\AppData\Roaming\FileOpen
2014-08-14 10:41:35	--------	d-s---w-	C:\WINDOWS\serviceprofiles\Localservice\AppData\Locallow\Microsoft
2014-08-14 10:29:32	--------	d-----w-	C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\PnrpSqm
2014-08-14 10:28:10	--------	d-----w-	C:\WINDOWS\serviceprofiles\Localservice\AppData\Roaming\PeerNetworking
2014-08-14 10:27:34	--------	d-----w-	C:\Users\Jonas\AppData\Roaming\Nitro PDF
2014-08-14 10:27:18	--------	d-----w-	C:\Users\Jonas\AppData\Local\CrashDumps
2014-08-14 10:26:32	--------	d-----w-	C:\Users\Jonas\AppData\Local\Lenovo
2014-08-14 10:26:28	--------	d-----w-	C:\Users\Jonas\AppData\Roaming\Lenovo
2014-08-14 10:26:11	--------	d-----w-	C:\Users\Jonas\AppData\Local\Absolute_Software
2014-08-14 10:26:07	--------	d-s---w-	C:\Users\Jonas\AppData\Locallow\Microsoft
2014-08-14 10:26:06	0FC9D2F3ECE69D86A6C8A9E71D43A50E	2249	----a-w-	C:\Users\Jonas\AppData\Roaming\AbsoluteReminder.xml
2014-08-14 10:25:55	--------	d-----r-	C:\Users\Jonas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-08-14 10:25:55	--------	d-----r-	C:\Users\Jonas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-08-14 10:25:50	--------	d-----w-	C:\Users\Jonas\AppData\Roaming\Adobe
2014-08-14 10:25:41	--------	d-----w-	C:\Users\Jonas\AppData\Local\Power2Go
2014-08-14 10:25:31	--------	d-----w-	C:\Users\Jonas\AppData\Roaming\LSC
2014-08-14 10:25:07	2D4384227D1A3680A872A0815D363F73	466	----a-w-	C:\Users\Jonas\AppData\Local\RegisteredPackageInformation.xml
2014-08-14 10:25:05	--------	d-----w-	C:\Users\Jonas\AppData\Local\Packages
2014-08-14 10:25:02	--------	d-----w-	C:\Users\Jonas\AppData\Roaming\Intel
2014-08-14 10:24:32	--------	d-----w-	C:\Users\Jonas\AppData\Local\Pokki
2014-08-13 20:07:48	--------	d-----w-	C:\Users\Jonas\AppData\Local\Google
2014-08-13 20:07:26	--------	d-----w-	C:\Users\Jonas\AppData\Local\Apps
2014-08-13 19:39:07	--------	d-----w-	C:\Users\Jonas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2014-08-13 19:38:23	--------	d-----w-	C:\Users\Jonas\AppData\Roaming\Dropbox
2014-08-13 19:31:33	--------	d-----w-	C:\Users\Jonas\AppData\Local\Programs
====== C:\Users\Jonas ======
2014-09-04 15:16:47	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\Jonas\Desktop\RSITx64.exe
2014-09-04 12:57:19	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip
2014-09-04 12:57:04	--------	d-----w-	C:\ProgramData\WinZip
2014-09-02 16:25:19	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Diablo III
2014-09-02 16:19:13	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
2014-09-02 16:19:13	--------	d-----w-	C:\ProgramData\Blizzard Entertainment
2014-09-02 16:17:24	--------	d-----w-	C:\ProgramData\Battle.net
2014-08-22 14:51:00	EE6AB2366FE30B192081224D4D47D5B9	910992	----a-w-	C:\Users\Jonas\Downloads\AutoDetectPkg.exe
2014-08-22 14:12:35	7AF8BE63F9DDC5169F1E3D84C23D2B6B	1022080	----a-w-	C:\Users\Jonas\Downloads\NBRT-Retail-Downloader.exe
2014-08-22 13:55:27	76F6E6E62256572C742574806590E4C8	3077584	------w-	C:\Users\Jonas\Downloads\NPE.exe
2014-08-22 13:36:14	--------	d-----w-	C:\Users\Default.migrated\Roaming
2014-08-22 13:36:00	--------	d-----r-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel PROSet Wireless
2014-08-16 15:35:57	--------	d---a-w-	C:\Users\Jonas\OneDrive
2014-08-16 10:48:26	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2014-08-15 08:38:47	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-08-15 08:38:18	--------	d-----w-	C:\ProgramData\Apple Computer
2014-08-15 08:37:42	--------	d-----w-	C:\ProgramData\Apple
2014-08-15 08:01:27	--------	d-----w-	C:\ProgramData\Sun
2014-08-15 08:01:24	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-08-15 07:54:01	--------	d-sh--w-	C:\Users\Jonas\IntelGraphicsProfiles
2014-08-15 07:31:26	6FC234AD3752E1267B34FB12BCD6718B	20	--sh--w-	C:\Users\Jonas\ntuser.ini
2014-08-14 22:16:47	6FC234AD3752E1267B34FB12BCD6718B	20	--sh--w-	C:\Users\UpdatusUser\ntuser.ini
2014-08-14 22:09:23	--------	d-----w-	C:\Users\Default\Roaming
2014-08-14 22:02:57	--------	d--h--w-	C:\Users\UpdatusUser\AppData
2014-08-14 22:02:57	--------	d-----r-	C:\Users\UpdatusUser\Favorites
2014-08-14 22:02:57	--------	d-----r-	C:\Users\UpdatusUser\Desktop
2014-08-14 22:02:56	--------	d--h--w-	C:\Users\Jonas\AppData
2014-08-14 22:02:56	--------	d-----r-	C:\Users\Jonas\Favorites
2014-08-14 22:02:56	--------	d-----r-	C:\Users\Jonas\Documents
2014-08-14 22:02:56	--------	d-----r-	C:\Users\Jonas\Desktop
2014-08-14 22:02:55	--------	d--h--w-	C:\Users\danny_000\AppData
2014-08-14 22:02:55	--------	d-----r-	C:\Users\danny_000\Favorites
2014-08-14 22:02:55	--------	d-----r-	C:\Users\danny_000\Documents
2014-08-14 22:02:55	--------	d-----r-	C:\Users\danny_000\Desktop
2014-08-14 21:56:47	--------	d-----w-	C:\ProgramData\Validity
2014-08-14 21:56:34	--------	d-----w-	C:\ProgramData\NVIDIA
2014-08-14 21:56:10	--------	d-----w-	C:\ProgramData\NVIDIA Corporation
2014-08-14 21:55:57	--------	d-----w-	C:\ProgramData\Conexant
2014-08-14 16:29:25	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2014-08-14 16:13:00	--------	d-----w-	C:\ProgramData\Microsoft Help
2014-08-14 14:51:53	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2014-08-14 11:22:08	--------	d-----r-	C:\Users\danny_000\Searches
2014-08-14 11:21:26	--------	d-----r-	C:\Users\danny_000\Contacts
2014-08-14 11:19:53	--------	d-----w-	C:\Users\danny_000\Roaming
2014-08-14 11:19:53	--------	d-----r-	C:\Users\danny_000\Videos
2014-08-14 11:19:53	--------	d-----r-	C:\Users\danny_000\Saved Games
2014-08-14 11:19:53	--------	d-----r-	C:\Users\danny_000\Pictures
2014-08-14 11:19:53	--------	d-----r-	C:\Users\danny_000\Music
2014-08-14 11:19:53	--------	d-----r-	C:\Users\danny_000\Links
2014-08-14 11:19:53	--------	d-----r-	C:\Users\danny_000\Downloads
2014-08-14 11:12:54	--------	d-----w-	C:\ProgramData\FileOpen
2014-08-14 10:30:43	--------	d-----w-	C:\Users\Public\Pokki
2014-08-14 10:25:55	--------	d-----r-	C:\Users\Jonas\Searches
2014-08-14 10:25:54	--------	d-----r-	C:\Users\Jonas\Contacts
2014-08-14 10:24:32	--------	d-----w-	C:\Users\Jonas\Roaming
2014-08-14 10:24:32	--------	d-----r-	C:\Users\Jonas\Videos
2014-08-14 10:24:32	--------	d-----r-	C:\Users\Jonas\Saved Games
2014-08-14 10:24:32	--------	d-----r-	C:\Users\Jonas\Pictures
2014-08-14 10:24:32	--------	d-----r-	C:\Users\Jonas\Music
2014-08-14 10:24:32	--------	d-----r-	C:\Users\Jonas\Links
2014-08-14 10:24:32	--------	d-----r-	C:\Users\Jonas\Downloads
2014-08-14 10:17:18	--------	d--h--r-	C:\Users\Public\AccountPictures
2014-08-13 20:08:26	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-08-13 19:41:09	--------	d-----r-	C:\Users\Jonas\Dropbox

====== C: exe-files ==
2014-09-05 09:29:44	7D82FCC3D345BBA270D7D976060AD2A6	98584	----a-w-	C:\Program Files (x86)\MossNet\bin\MossNet.BrowserAdapter.exe
2014-09-05 09:29:38	F2EA795CC27ABD186E4E58AF47FCCC61	103936	----a-w-	C:\Program Files (x86)\MossNet\bin\certUtil\certutil.exe
2014-09-05 09:29:38	0FDE0D95EF47B8003F1BE1C700DE8686	161048	----a-w-	C:\Program Files (x86)\MossNet\bin\MossNet.BRT.Helper.exe
2014-09-05 09:29:13	FE53D3DBD4B12E4FCE45C63B624C3B87	114968	----a-w-	C:\Program Files (x86)\MossNet\bin\MossNet.BrowserAdapter64.exe
2014-09-05 09:12:48	2FB742C226D0474202D28A5724E6CA4B	7235664	----a-w-	C:\Program Files (x86)\Google\Update\Install\{7BB43454-0396-4F5A-9D49-ECA6C7851560}\37.0.2062.103_36.0.1985.143_chrome_updater.exe
2014-09-05 09:12:48	2FB742C226D0474202D28A5724E6CA4B	7235664	----a-w-	C:\Program Files (x86)\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\37.0.2062.103\37.0.2062.103_36.0.1985.143_chrome_updater.exe
2014-09-04 15:17:01	9A2347903D6EDB84C10F288BC0578C1C	388608	----a-w-	C:\Program Files\trend micro\Jonas.exe
2014-09-04 15:16:47	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\Jonas\Desktop\RSITx64.exe
2014-09-04 13:02:51	F5769E5DBD8867FA6A465A4A8DD69C87	98304	----a-w-	C:\Users\Jonas\AppData\Local\Temp\post2.exe
2014-09-04 13:01:49	E8D6394AE9C4B0DB79FDBC681811BA30	353472	----a-w-	C:\Users\Jonas\AppData\Local\Temp\Activation Code Downloader__9168_il154.exe
2014-09-04 13:01:26	E8D6394AE9C4B0DB79FDBC681811BA30	353472	----a-w-	C:\Users\Jonas\Downloads\Nitro pro\Activation Code Downloader__9168_il154.exe
2014-09-04 12:57:16	40395C175553CB14D2050888EFCCDF00	4961800	----a-w-	C:\Users\Jonas\AppData\Local\Temp\vcredist_x64.exe
2014-09-04 12:56:59	3F18ED408F2ED4C7BC302CF1B4EA5C52	5597584	----a-w-	C:\Users\Jonas\AppData\Local\Temp\CloudBackup2550.exe
2014-09-04 12:56:22	A1E815270CD16D1F71CAC55A6946305A	860096	----a-w-	C:\Users\Jonas\Downloads\winzip\winzip18-lanr.exe
2014-09-04 12:46:24	922671792B02012D8CFAD865619603D1	71884888	----a-w-	C:\Users\Jonas\Downloads\Nitro pro\Nitro Pro v9.5.3.8 (x86-x64) Incl Keymaker-CORE [TorDigger]\nitro_pro9_x64.exe
2014-09-04 12:46:23	23D32F5A94859201B6FFDEA306424807	54536280	----a-w-	C:\Users\Jonas\Downloads\Nitro pro\Nitro Pro v9.5.3.8 (x86-x64) Incl Keymaker-CORE [TorDigger]\nitro_pro9.exe
2014-09-02 16:25:19	BDCB603E1C6AE634201B0DA33A65ACD4	3588656	----a-w-	C:\Program Files (x86)\Diablo III\Diablo III Launcher.exe
2014-09-02 16:25:19	BA415BFDADE6747B10122B26DC70B9B8	24423984	----a-w-	C:\Program Files (x86)\Diablo III\Diablo III.exe
2014-09-02 16:25:19	456B954852E2FE140F9C65A1DFD497D3	334384	----a-w-	C:\Program Files (x86)\Diablo III\InspectorReporter\BlizzardError.exe
2014-09-02 16:23:33	AE505ADEF35C001B8912E35EAA422B23	42992	----a-w-	C:\ProgramData\Lenovo\SystemUpdate\Session\Repository\pwmfix40001\pwmdetect.exe
2014-09-02 16:19:13	C69442812638BB1F21C1789D10E62013	1971760	----a-w-	C:\Program Files (x86)\Battle.net\SystemSurvey.exe
2014-09-02 16:19:13	C2703038EDF286117EC4ABE77897038D	399408	----a-w-	C:\Program Files (x86)\Battle.net\Battle.net.exe
2014-09-02 16:19:13	B7302ECB4555D18D939F2B567078C5BB	9913392	----a-w-	C:\Program Files (x86)\Battle.net\Battle.net.4944\Battle.net.exe
2014-09-02 16:19:13	A829DDDC417B4BB4D8175DF1846B8BAA	1337424	----a-w-	C:\Program Files (x86)\Common Files\Blizzard Entertainment\Battle.net\Uninstall.exe
2014-09-02 16:19:13	9281BA1479347C2757EF6FBB52697921	333360	----a-w-	C:\Program Files (x86)\Battle.net\BlizzardError.exe
2014-09-02 16:19:13	3D8260318E964F32E8F8C152A990E09F	2869808	----a-w-	C:\Program Files (x86)\Battle.net\Battle.net Launcher.exe
2014-09-02 16:17:40	E8FB5613326549272859CCBE68AE385A	399920	----a-w-	C:\ProgramData\Battle.net\Agent\Agent.exe
2014-09-02 16:17:40	ACA6BE699E08A9F2EE24F2019D2D28F0	10549296	----a-w-	C:\ProgramData\Battle.net\Agent\Agent.3286\Agent.exe
2014-09-02 16:17:40	9281BA1479347C2757EF6FBB52697921	333360	----a-w-	C:\ProgramData\Battle.net\Agent\BlizzardError.exe
2014-09-02 16:17:40	52F2B8439890B30ED08E2D078ECBF5FA	1620016	----a-w-	C:\ProgramData\Battle.net\Agent\Blizzard Uninstaller.exe
2014-09-02 16:17:29	A33A3CF7B3AA590DB9D8548D08DF1E44	3067960	----a-w-	C:\ProgramData\Battle.net\Setup\diablo3_engb\Diablo III Setup.exe
=== C: other files ==
2014-09-05 09:29:38	CD284602F0C08C06A32ABB1A0D2BCA16	1824510	----a-w-	C:\Program Files (x86)\MossNet\bin\MossNet.BRT.zip
2014-09-05 09:29:38	13650CEE5242DAA4E5D3455A3C8405D4	1337367	----a-w-	C:\Program Files (x86)\MossNet\bin\certutil.zip
2014-09-04 14:08:04	35AE23A825E89110DFC1BDA69F26F263	96856	----a-w-	C:\Windows\System32\drivers\SMR410.SYS
2014-09-02 21:14:36	568D6F1C730EC3A9B381F01020D600DC	4148224	----a-w-	C:\Windows\System32\win32k.sys

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-21-2856834796-3624118678-1303184682-1001\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"WAB Migrate"="%ProgramFiles%\Windows Mail\wab.exe /Upgrade"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IMSS"="C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe"
"Fastboot"="C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBConsole.exe /analysis"
"SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\\WINDOWS\\SysWOW64\\nvinit.dll"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"LenovoOptMouseUpdate"="C:\Program Files\Lenovo\HOTKEY\extapsup.exe"
"BTMTrayAgent"="rundll32.exe C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll,TrayApp"
"TpShocks"="TpShocks.exe"
"LnvMobHotspotClient"="C:\Program Files\Lenovo\Lenovo Mobile Hotspot\MobileHotspotclient.exe"
"LENOVO.TPKNRRES"="rundll32.exe C:\Program Files\Lenovo\Communications Utility\LibStartStub.dll,AVStartupStub"
"SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe "

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\\windows\\system32\\nvinitx.dll"

==== Task Scheduler Jobs ======================

C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [13/08/2014 22:07]
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [13/08/2014 22:07]

==== Other Scheduled Tasks ======================

"C:\WINDOWS\SysNative\tasks\CLMLSvc" [C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe]
"C:\WINDOWS\SysNative\tasks\CreateChoiceProcessTask" [C:\Windows\BrowserChoice\browserchoice.exe]
"C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\WINDOWS\SysNative\tasks\ISM-UpdateService-e57b59e7-5862-4250-9ce0-76fb411dc0d2" ["C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\Bootstrap.exe"]
"C:\WINDOWS\SysNative\tasks\ISM-UpdateService-e57b59e7-5862-4250-9ce0-76fb411dc0d2-Logon" ["C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\Bootstrap.exe"]
"C:\WINDOWS\SysNative\tasks\Norton WSC Integration" ["C:\Program Files (x86)\Norton Internet Security\Engine\21.5.0.19\WSCStub.exe"]
"C:\WINDOWS\SysNative\tasks\PMTask" [C:\PROGRA~2\ThinkPad\UTILIT~1\PwmIdTsv.exe]
"C:\WINDOWS\SysNative\tasks\StartPowerDVDService" ["C:\PROGRAM FILES (x86)\Cyberlink\PowerDVD10\PDVD10Serv.exe"]
"C:\WINDOWS\SysNative\tasks\User_Feed_Synchronization-{1859D41D-EF33-46DC-9BC3-A2AE1D6054ED}" [C:\WINDOWS\system32\msfeedssync.exe]
"C:\WINDOWS\SysNative\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe]
"C:\WINDOWS\SysNative\tasks\Intel(R) Small Business Advantage\Notifier" ["C:\Program Files\Intel\Intel(R) Small Business Advantage\UI\SBA_Notifier.exe"]
"C:\WINDOWS\SysNative\tasks\Lenovo\Experience Improvement" [C:\Program Files\Lenovo\ExperienceImprovement\LenovoExperienceImprovement.exe]
"C:\WINDOWS\SysNative\tasks\Lenovo\Lenovo Customer Feedback Program" ["%ProgramFiles%\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe"]
"C:\WINDOWS\SysNative\tasks\Lenovo\Lenovo Customer Feedback Program 64" ["%ProgramFiles(x86)%\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe"]
"C:\WINDOWS\SysNative\tasks\Lenovo\Lenovo Settings Power" ["C:\windows\system32\rundll32.exe" "C:\Program Files (x86)\ThinkPad\Utilities\PWMTR64V.dll",PwrMgrBkGndMonitor]
"C:\WINDOWS\SysNative\tasks\Lenovo\Lenovo Solution Center Launcher" [%programfiles%\lenovo\lenovo solution center\App\LSCService.exe]
"C:\WINDOWS\SysNative\tasks\Lenovo\LSC\LSCHardwareScan" ["C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe" -diag HWScan]
"C:\WINDOWS\SysNative\tasks\Lenovo\LSC\RebootCountTask" ["C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCService.exe"]
"C:\WINDOWS\SysNative\tasks\Lenovo\LSC\Time72Task" ["C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCService.exe"]
"C:\WINDOWS\SysNative\tasks\Norton Internet Security\Norton Error Analyzer" [C:\Program Files (x86)\Norton Internet Security\Engine\21.5.0.19\SymErr.exe]
"C:\WINDOWS\SysNative\tasks\Norton Internet Security\Norton Error Processor" [C:\Program Files (x86)\Norton Internet Security\Engine\21.5.0.19\SymErr.exe]
"C:\WINDOWS\SysNative\tasks\TVT\LenovoWERMonitor" ["C:\Program Files (x86)\Common Files\lenovo\SUP\sup_wermonitor.exe"]
"C:\WINDOWS\SysNative\tasks\TVT\TVSUUpdateTask" ["C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe"]

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"{BBDA0591-3099-440a-AA10-41764D9DB4DB}"="C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_21.5.0.19\IPSFF" [22/08/2014 17:03]
[HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions]
"{FCF36B88-1BBA-487f-B64B-D2E8980A9293}"="C:\Program Files (x86)\Lenovo\Password Manager\PWM Firefox Extension" [22/08/2014 15:32]

==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
iikflkcanblccfahdhdonehdalibjnif - No path found[]
lpdfbkehegfmedglgemnhbnpmfmioggj - No path found[]
mkfokfffehpeedafpekjeddnmnjhmcmk - C:\Program Files (x86)\Norton Internet Security\Engine\21.5.0.19\Exts\Chrome.crx[31/07/2014 07:47]

Google Docs - Jonas\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake
Google Drive - Jonas\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
YouTube - Jonas\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Last updated at time on date - Jonas\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb
Google Search - Jonas\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
Norton Identity Safe - Jonas\AppData\Local\Google\Chrome\User Data\Default\Extensions\iikflkcanblccfahdhdonehdalibjnif
ThinkVantage Password Manager - Jonas\AppData\Local\Google\Chrome\User Data\Default\Extensions\lpdfbkehegfmedglgemnhbnpmfmioggj
Norton Security Toolbar - Jonas\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk
Norton Safe Search as default for Chrome - Jonas\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmgcfemagnogdodbambjhdcmfcpicngl
Google Wallet - Jonas\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Gmail - Jonas\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

==== Chromium Startpages ======================

C:\Users\Jonas\AppData\Local\Google\Chrome\User Data\Default\Preferences
"homepage": "http://www.istartsurf.com/?type=hp&ts=1409835785&from=amt&uid=WDCXWD10JPVX-08JC3T5_WD-WX21EC3A1278A1278",
"startup_urls": [ "http://www.istartsurf.com/?type=hp&ts=1409835785&from=amt&uid=WDCXWD10JPVX-08JC3T5_WD-WX21EC3A1278A1278" ],


==== Chrome Fix ======================

C:\Users\Jonas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.superfish.com_0.localstorage deleted successfully
C:\Users\Jonas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.superfish.com_0.localstorage-journal deleted successfully
C:\Users\Jonas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.superfish.com_0.localstorage deleted successfully
C:\Users\Jonas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.superfish.com_0.localstorage-journal deleted successfully
C:\Users\Jonas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_searches.vi-view.com_0.localstorage deleted successfully
C:\Users\Jonas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_searches.vi-view.com_0.localstorage-journal deleted successfully
C:\Users\Jonas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.betterdeals00.betterdeals.co_0.localstorage deleted successfully
C:\Users\Jonas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.betterdeals00.betterdeals.co_0.localstorage-journal deleted successfully
C:\Users\Jonas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.istartsurf.com_0.localstorage deleted successfully
C:\Users\Jonas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.istartsurf.com_0.localstorage-journal deleted successfully
C:\Users\Jonas\AppData\Local\Google\Chrome\User Data\Default\Extensions\iikflkcanblccfahdhdonehdalibjnif deleted successfully
C:\Users\Jonas\AppData\Local\Google\Chrome\User Data\Default\Extensions\lpdfbkehegfmedglgemnhbnpmfmioggj deleted successfully

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.istartsurf.com/?type=hp&ts=1409835785&from=amt&uid=WDCXWD10JPVX-08JC3T5_WD-WX21EC3A1278A1278"
"Default_Page_URL"="http://www.istartsurf.com/?type=hp&ts=1409835785&from=amt&uid=WDCXWD10JPVX-08JC3T5_WD-WX21EC3A1278A1278"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://www.istartsurf.com/web/?type=ds&ts=1409835785&from=amt&uid=WDCXWD10JPVX-08JC3T5_WD-WX21EC3A1278A1278&q={searchTerms}"
"Default_Page_URL"="http://www.istartsurf.com/?type=hp&ts=1409835785&from=amt&uid=WDCXWD10JPVX-08JC3T5_WD-WX21EC3A1278A1278"
"Start Page"="http://www.istartsurf.com/?type=hp&ts=1409835785&from=amt&uid=WDCXWD10JPVX-08JC3T5_WD-WX21EC3A1278A1278"
"Search Page"="http://www.istartsurf.com/web/?type=ds&ts=1409835785&from=amt&uid=WDCXWD10JPVX-08JC3T5_WD-WX21EC3A1278A1278&q={searchTerms}"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://www.istartsurf.com/web/?type=ds&ts=1409835785&from=amt&uid=WDCXWD10JPVX-08JC3T5_WD-WX21EC3A1278A1278&q={searchTerms}"
"Default_Page_URL"="http://www.istartsurf.com/?type=hp&ts=1409835785&from=amt&uid=WDCXWD10JPVX-08JC3T5_WD-WX21EC3A1278A1278"
"Start Page"="http://www.istartsurf.com/?type=hp&ts=1409835785&from=amt&uid=WDCXWD10JPVX-08JC3T5_WD-WX21EC3A1278A1278"
"Search Page"="http://www.istartsurf.com/web/?type=ds&ts=1409835785&from=amt&uid=WDCXWD10JPVX-08JC3T5_WD-WX21EC3A1278A1278&q={searchTerms}"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Start Page"="http://www.google.com"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{C122F81C-F81C-42E1-AF73-8E6458909466}"
{012E1000-F331-11DB-8314-0800200C9A66} Google  Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing  Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"
{2455F7FD-5CE7-4697-8F84-D86826C380A4} Google  Url="http://www.google.com/search?q={searchTerms}"
{2455F7FD-5CE7-4697-8F84-D86826C380A4} Google  Url="http://www.google.com/search?q={searchTerms}"
{C122F81C-F81C-42E1-AF73-8E6458909466} Bing  Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02"

==== shortcuts on Users Desktops ======================

C:\Users\Jonas\Desktop\Dropbox.lnk - C:\Users\Jonas\AppData\Roaming\Dropbox\bin\Dropbox.exe /home
C:\Users\Jonas\Desktop\Jonas.lnk - C:\Users\Jonas 
C:\Users\Jonas\Desktop\Mijn documenten.lnk - C:\Users\Jonas\Documents 
C:\Users\Jonas\Desktop\Norton-installatiebestanden.lnk - C:\Users\Public\Downloads\Norton\{NIS215019-SHPD-FSD40014} 
C:\Users\Jonas\Desktop\µTorrent.lnk -  

==== shortcuts on All Users Desktop ======================

C:\Users\Public\Desktop\Battle.net.lnk - C:\Program Files (x86)\Battle.net\Battle.net Launcher.exe 
C:\Users\Public\Desktop\Diablo III.lnk - C:\Program Files (x86)\Diablo III\Diablo III Launcher.exe 
C:\Users\Public\Desktop\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe http://www.istartsurf.com/?type=sc&ts=1409835785&from=amt&uid=WDCXWD10JPVX-08JC3T5_WD-WX21EC3A1278A1278
C:\Users\Public\Desktop\iTunes.lnk - C:\Program Files (x86)\iTunes\iTunes.exe 
C:\Users\Public\Desktop\Lenovo Solution Center.lnk - C:\Program Files (x86)\Lenovo\Lenovo Solution Center\LSC.exe 
C:\Users\Public\Desktop\Norton Internet Security.lnk - C:\Program Files (x86)\Norton Internet Security\Engine64\21.5.0.19\uiStub.exe 
C:\Users\Public\Desktop\WinZip.lnk - C:\Program Files (x86)\WinZip\WINZIP64.EXE 

==== shortcuts in Users Start Menu ======================

C:\Users\danny_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC App Store.lnk - C:\Users\Jonas\AppData\Local\Pokki\Engine\pokki.exe  /OPENf22abfeae27a67446927d078890381efc546d3e1
C:\Users\Jonas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe http://www.istartsurf.com/?type=sc&ts=1409835785&from=amt&uid=WDCXWD10JPVX-08JC3T5_WD-WX21EC3A1278A1278
C:\Users\Jonas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC App Store.lnk - C:\Users\Jonas\AppData\Local\Pokki\Engine\HostAppService.exe  /OPEN"f22abfeae27a67446927d078890381efc546d3e1"
C:\Users\Jonas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Start Menu.lnk - C:\Users\Jonas\AppData\Local\Pokki\Engine\HostAppService.exe /OPEN"menu"
C:\Users\Jonas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox\Dropbox.lnk - C:\Users\Jonas\AppData\Roaming\Dropbox\bin\Dropbox.exe /home
C:\Users\Jonas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox\Uninstall Dropbox.lnk - C:\Users\Jonas\AppData\Roaming\Dropbox\bin\DropboxUninstaller.exe 

==== shortcuts in All Users Start Menu ======================

C:\ProgramData\Microsoft\Windows\Start Menu\WinZip.lnk - C:\Program Files (x86)\WinZip\WINZIP64.EXE 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk - C:\WINDOWS\Installer\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}\AppleSoftwareUpdateIco.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nitro Pro 9.lnk - C:\Program Files (x86)\Nitro\Pro 9\NitroPDF.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 9.lnk - C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk - C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net\Battle.net.lnk - C:\Program Files (x86)\Battle.net\Battle.net Launcher.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Diablo III\Battle.net Account Management.lnk - C:\Program Files (x86)\Diablo III\BattlenetAccount.url 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Diablo III\Blizzard Technical Support.lnk - C:\Program Files (x86)\Diablo III\TechSupport.url 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Diablo III\Diablo III - Manual.lnk - C:\Program Files (x86)\Diablo III\Manual.url 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Diablo III\Diablo III.lnk - C:\Program Files (x86)\Diablo III\Diablo III Launcher.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fingerprint Reader\Lenovo Fingerprint Manager.lnk - C:\Program Files (x86)\Lenovo Fingerprint Reader\Lenovo Fingerprint Manager.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe http://www.istartsurf.com/?type=sc&ts=1409835785&from=amt&uid=WDCXWD10JPVX-08JC3T5_WD-WX21EC3A1278A1278
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel\Intel(R) Management Engine Components\Intel(R) Management and Security Status.lnk - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel PROSet Wireless\WiFi Advanced Statistics.lnk - C:\Program Files (x86)\Common Files\Intel\WirelessCommon\imFrmwrk.exe /sf Advanced Statistics
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel PROSet Wireless\WiFi Event Viewer.lnk - C:\Program Files (x86)\Common Files\Intel\WirelessCommon\imFrmwrk.exe /sf Wireless Event Viewer
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel PROSet Wireless\WiFi Manual Diagnostics.lnk - C:\Program Files (x86)\Common Files\Intel\WirelessCommon\imFrmwrk.exe /sf Wireless Diagnostics
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes\Info iTunes.lnk - C:\Program Files (x86)\iTunes\iTunes.Resources\nl.lproj\About iTunes.rtf 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes\iTunes.lnk - C:\Program Files (x86)\iTunes\iTunes.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\About Java.lnk - C:\Program Files (x86)\Java\jre7\bin\javacpl.exe -tab about
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Check For Updates.lnk - C:\Program Files (x86)\Java\jre7\bin\javacpl.exe -tab update
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Configure Java.lnk - C:\Program Files (x86)\Java\jre7\bin\javacpl.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Get Help.lnk -  
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Visit Java.com.lnk -  
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo\System Update.lnk - C:\Program Files (x86)\Lenovo\System Update\tvsu.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo ThinkVantage Tools\Lenovo Solution Center.lnk - C:\Program Files (x86)\Lenovo\Lenovo Solution Center\LSC.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo ThinkVantage Tools\System Update.lnk - C:\Program Files (x86)\Lenovo\System Update\tvsu.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Access 2013.lnk - C:\windows\Installer\{91150000-0011-0000-0000-0000000FF1CE}\accicons.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Excel 2013.lnk - C:\WINDOWS\Installer\{91150000-0011-0000-0000-0000000FF1CE}\xlicons.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\InfoPath Designer 2013.lnk - C:\windows\Installer\{91150000-0011-0000-0000-0000000FF1CE}\inficon.exe  /design 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\InfoPath Filler 2013.lnk - C:\windows\Installer\{91150000-0011-0000-0000-0000000FF1CE}\inficon.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Lync 2013.lnk - C:\WINDOWS\Installer\{91150000-0011-0000-0000-0000000FF1CE}\lyncicon.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\OneDrive for Business 2013.lnk - C:\WINDOWS\Installer\{91150000-0011-0000-0000-0000000FF1CE}\grv_icons.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\OneNote 2013.lnk - C:\WINDOWS\Installer\{91150000-0011-0000-0000-0000000FF1CE}\joticon.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Outlook 2013.lnk - C:\WINDOWS\Installer\{91150000-0011-0000-0000-0000000FF1CE}\outicon.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\PowerPoint 2013.lnk - C:\WINDOWS\Installer\{91150000-0011-0000-0000-0000000FF1CE}\pptico.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Publisher 2013.lnk - C:\WINDOWS\Installer\{91150000-0011-0000-0000-0000000FF1CE}\pubs.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Verzenden naar OneNote 2013.lnk - C:\WINDOWS\Installer\{91150000-0011-0000-0000-0000000FF1CE}\joticon.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Word 2013.lnk - C:\WINDOWS\Installer\{91150000-0011-0000-0000-0000000FF1CE}\wordicon.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Hulpprogramma's van Office 2013\Database Compare 2013.lnk - C:\WINDOWS\Installer\{91150000-0011-0000-0000-0000000FF1CE}\dbcicons.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Hulpprogramma's van Office 2013\Lync opnamebeheer.lnk - C:\WINDOWS\Installer\{91150000-0011-0000-0000-0000000FF1CE}\lyncicon.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Hulpprogramma's van Office 2013\Office 2013 Upload Center.lnk - C:\windows\Installer\{91150000-0011-0000-0000-0000000FF1CE}\msouc.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Hulpprogramma's van Office 2013\Spreadsheet Compare 2013.lnk - C:\WINDOWS\Installer\{91150000-0011-0000-0000-0000000FF1CE}\sscicons.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Hulpprogramma's van Office 2013\Taalvoorkeuren voor Office 2013.lnk - C:\windows\Installer\{91150000-0011-0000-0000-0000000FF1CE}\misc.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Hulpprogramma's van Office 2013\Telemetriedashboard voor Office 2013.lnk - C:\windows\Installer\{91150000-0011-0000-0000-0000000FF1CE}\osmadminicon.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Hulpprogramma's van Office 2013\Telemetrielogboek voor Office 2013.lnk - C:\windows\Installer\{91150000-0011-0000-0000-0000000FF1CE}\osmclienticon.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight\Microsoft Silverlight.lnk - C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\Silverlight.Configuration.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Internet Security\Norton Internet Security.lnk - C:\Program Files (x86)\Norton Internet Security\Engine64\21.5.0.19\uiStub.exe /win8
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\Documentation.lnk - C:\Program Files (x86)\VideoLAN\VLC\Documentation.url 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\Release Notes.lnk - C:\Program Files (x86)\VideoLAN\VLC\NEWS.txt 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\VideoLAN Website.lnk - C:\Program Files (x86)\VideoLAN\VLC\VideoLAN Website.url 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\VLC media player - reset preferences and cache files.lnk - C:\Program Files (x86)\VideoLAN\VLC\vlc.exe --reset-config --reset-plugins-cache vlc://quit
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\VLC media player skinned.lnk - C:\Program Files (x86)\VideoLAN\VLC\vlc.exe -Iskins
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\VLC media player.lnk - C:\Program Files (x86)\VideoLAN\VLC\vlc.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip\WinZip 18.5.lnk - C:\Program Files (x86)\WinZip\WINZIP64.EXE 

==== shortcuts in Quick Launch ======================

C:\Users\danny_000\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe 
C:\Users\danny_000\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe 
C:\Users\danny_000\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -  
C:\Users\danny_000\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -  
C:\Users\danny_000\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\File Explorer.lnk - C:\Users\Jonas\AppData\Roaming\Microsoft\Windows\Libraries 
C:\Users\danny_000\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe 
C:\Users\danny_000\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe 
C:\Users\danny_000\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Lenovo PC Experience.lnk - C:\Windows\System32\Dxpserver.exe /c
C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -  
C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -  
C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -  
C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -  
C:\Users\Jonas\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe http://www.istartsurf.com/?type=sc&ts=1409835785&from=amt&uid=WDCXWD10JPVX-08JC3T5_WD-WX21EC3A1278A1278
C:\Users\Jonas\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files\Internet Explorer\iexplore.exe http://www.istartsurf.com/?type=sc&ts=1409835785&from=amt&uid=WDCXWD10JPVX-08JC3T5_WD-WX21EC3A1278A1278
C:\Users\Jonas\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Microsoft Outlook.lnk - C:\Program Files (x86)\Microsoft Office\Office15\OUTLOOK.EXE /recycle
C:\Users\Jonas\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -  
C:\Users\Jonas\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -  
C:\Users\Jonas\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\b15f30ab853b7d31\Diablo III.lnk - C:\Program Files (x86)\Diablo III\Diablo III Launcher.exe 
C:\Users\Jonas\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\File Explorer.lnk -  
C:\Users\Jonas\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe http://www.istartsurf.com/?type=sc&ts=1409835785&from=amt&uid=WDCXWD10JPVX-08JC3T5_WD-WX21EC3A1278A1278
C:\Users\Jonas\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe http://www.istartsurf.com/?type=sc&ts=1409835785&from=amt&uid=WDCXWD10JPVX-08JC3T5_WD-WX21EC3A1278A1278
C:\Users\Jonas\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Outlook 2013.lnk - C:\WINDOWS\Installer\{91150000-0011-0000-0000-0000000FF1CE}\outicon.exe 
C:\Users\Jonas\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\PC App Store.lnk - C:\Users\Jonas\AppData\Local\Pokki\Engine\HostAppService.exe  /OPEN"f22abfeae27a67446927d078890381efc546d3e1"
C:\Users\Jonas\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Start Menu.lnk - C:\Users\Jonas\AppData\Local\Pokki\Engine\HostAppService.exe /OPEN"menu"
C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -  
C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -  

==== shortcuts After Repair ======================

C:\Users\Public\Desktop\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe 
C:\Users\Jonas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe 
C:\Users\Jonas\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe 
C:\Users\Jonas\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files\Internet Explorer\iexplore.exe 
C:\Users\Jonas\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe 
C:\Users\Jonas\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe 

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\iikflkcanblccfahdhdonehdalibjnif deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\lpdfbkehegfmedglgemnhbnpmfmioggj deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\MyPC Backup deleted successfully

==== HijackThis Entries ======================

F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O2 - BHO: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine\21.5.0.19\coIEPlg.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\21.5.0.19\coIEPlg.dll
O4 - HKLM\..\Run: [IMSS] "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe"
O4 - HKLM\..\Run: [Fastboot] "C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBConsole.exe" /analysis
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKUS\S-1-5-21-2856834796-3624118678-1303184682-1001\..\RunOnce: [WAB Migrate] %ProgramFiles%\Windows Mail\wab.exe /Upgrade (User 'UpdatusUser')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll/105
O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra button: Lync - klikken om te bellen - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync - klikken om te bellen - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {57AF0810-BDA7-47A5-B02D-FDA1073C04B0} (TunnelX Control) - https://eu.mydlink.com/8D/activeX//TunnelX.ocx
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
O20 - AppInit_DLLs: C:\WINDOWS\SysWOW64\nvinit.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Intel® Centrino® Wireless Bluetooth® + High Speed Service (AMPPALR3) - Intel Corporation - C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: AVControlCenter - Lenovo Corporation - C:\Program Files\Lenovo\Communications Utility\AVControlCenter32.exe
O23 - Service: Bluetooth Device Monitor - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
O23 - Service: Bluetooth OBEX Service - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: BrcmSetSecurity - Intel - C:\Program Files\Intel Corporation\Intel WiDi\BrcmSetSecurity.exe
O23 - Service: Intel(R) Centrino(R) Wireless Bluetooth(R) + High Speed Security Service (BTHSSecurityMgr) - Intel(R) Corporation - C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: ExpressCache - Condusiv Technologies - C:\Program Files\Condusiv Technologies\ExpressCache\ExpressCache.exe
O23 - Service: FastbootService - Lenovo - C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @oem78.inf,%ibm.svcDesc0%;Lenovo PM Service (IBMPMSVC) - Unknown owner - C:\WINDOWS\system32\ibmpmsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Wireless Bluetooth(R) 4.0 Radio Management - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe
O23 - Service: Intel(R) Small Business Advantage (intelsba) - Intel Corporation - C:\Program Files\Intel\Intel(R) Small Business Advantage\Service\Intel.SmallBusinessAdvantage.WindowsService.exe
O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Intel(R) Smart Connect Technology Agent (ISCTAgent) - Unknown owner - C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Lenovo Settings Service - Lenovo Group Limited - C:\Program Files\Lenovo\SettingsDependency\SettingsService.exe
O23 - Service: Lenovo AVFramework Camera Privacy Controller (LENOVO.CAMMUTE) - Lenovo Corporation - C:\Program Files\Lenovo\Communications Utility\cammute.exe
O23 - Service: Lenovo Microphone Mute (LENOVO.MICMUTE) - Lenovo Group Limited - C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe
O23 - Service: Lenovo AVFramework Microphone Volume Controller and Dolby Interface (LENOVO.TPKNRSVC) - Lenovo Group Limited - C:\Program Files\Lenovo\Communications Utility\tpknrsvc.exe
O23 - Service: Lenovo AVFramework Virtual Camera Controller Service (LENOVO.TVTVCAM) - Lenovo Corporation - C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe
O23 - Service: Lenovo Auto Scroll (Lenovo.VIRTSCRLSVC) - Lenovo Group Limited - C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Lenovo Settings Mobile Hotspot Service (LnvHotSpotSvc) - Lenovo - C:\Program Files\Lenovo\Lenovo Mobile Hotspot\LnvHotSpotSvc.exe
O23 - Service: LocationTaskManager - Unknown owner - C:\Program Files (x86)\Lenovo\LocationAware\loctaskmgr.exe
O23 - Service: LSCWinService - Unknown owner - C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Norton Internet Security (NIS) - Symantec Corporation - C:\Program Files (x86)\Norton Internet Security\Engine\21.5.0.19\NIS.exe
O23 - Service: NitroPDFDriverCreatorReadSpool8 (NitroDriverReadSpool8) - Nitro PDF Software - C:\Program Files\Common Files\Nitro\Pro\8.0\NitroPDFDriverService8x64.exe
O23 - Service: NitroPDFDriverCreatorReadSpool9 (NitroDriverReadSpool9) - Nitro PDF Software - C:\Program Files\Nitro\Pro 9\NitroPDFDriverService9x64.exe
O23 - Service: NitroUpdateService - Unknown owner - C:\Program Files\Nitro\Pro 9\Nitro_UpdateService.exe
O23 - Service: Nalpeiron Licensing Service (nlsX86cc) - Nalpeiron Ltd. - C:\windows\SysWOW64\NLSSRV32.EXE
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: Lenovo Settings Power Service (Power Manager DBC Service) - Lenovo - C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE
O23 - Service: Lenovo QuickControl Master Service (QuickControlMasterSvc) - Lenovo Group Limited - C:\Program Files (x86)\Lenovo\QuickControl\QuickControlMasterSvc.exe
O23 - Service: Lenovo QuickControl Service (QuickControlService) - Lenovo Group Limited - C:\Program Files (x86)\Lenovo\QuickControl\QuickControlService.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: System Update (SUService) - Unknown owner - C:\Program Files (x86)\Lenovo\System Update\SUService.exe
O23 - Service: TeamViewer 9 (TeamViewer9) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
O23 - Service: ThinkPad HDD APS Logging Service (TPHDEXLGSVC) - Unknown owner - C:\WINDOWS\System32\TPHDEXLG64.exe (file missing)
O23 - Service: Lenovo Hotkey Client Loader (TPHKLOAD) - Lenovo Group Limited - C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: ValBioService - Validity Sensors, Inc. - C:\Program Files\Lenovo Fingerprint Reader\ValBioService.exe
O23 - Service: @oem73.inf,%WBFService_SvcDesc%;Synaptics FP WBF Policy Service (valWBFPolicyService) - Unknown owner - C:\WINDOWS\system32\valWBFPolicyService.exe (file missing)
O23 - Service: @oem73.inf,%BioSyncService_SvcDesc%;BiometricSensorDataSynchronization (valWbioSyncSvc) - Unknown owner - C:\WINDOWS\system32\valWbioSyncSvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe

==== Empty IE Cache ======================

C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Jonas\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\Jonas\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\Users\Jonas\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=15717 folders=321 779295070 bytes)

==== Empty Temp Folders ======================

C:\Users\danny_000\AppData\Local\Temp emptied successfully
C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Jonas\AppData\Local\Temp will be emptied at reboot
C:\Users\UpdatusUser\AppData\Local\Temp emptied successfully
C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\WINDOWS\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\WINDOWS\Temp successfully emptied
C:\Users\Jonas\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Program Files (x86)\MyPC Backup\Database\mpcb_settings.db"  not found
"C:\PROGRA~2\MyPC Backup\Database\mpcb_settings.db"  not found
"C:\Program Files (x86)\MyPC Backup"  not found
"C:\Program Files (x86)\MossNet"  not found
"C:\PROGRA~2\MyPC Backup"  not found
"C:\Users\Jonas\AppData\Local\Pokki"  not found
"C:\PROGRA~2\MossNet"  not found

==== EOF on vr 05/09/2014 at 11:37:43,04 ======================